$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: J8ejlWbg8Lnu50af4irzeDrQSuo32BtAG/F22oksyQk= Subject key identifier: DD:E0:DF:B5:7E:AC:1B:11:51:46:70:86:67:A8:33:FE:BD:E7:4C:2C Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 0169 Signing time: Sun 19 Oct 2025 06:41:09 +0000 Manifest this update: Sun 19 Oct 2025 06:41:09 +0000 Manifest next update: Sun 26 Oct 2025 06:41:09 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: y9NbuXbOMJUHI/nBJqZmxlOYhTEPRJ/8y2o+z/GUEJE=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Oct 19 06:41:09 2025 GMT Not After : Oct 26 06:41:09 2025 GMT Subject: CN=68f48805-4c58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:11:6e:fc:a5:36:5e:90:12:c2:5d:77:52:b2: e1:ea:9a:cd:41:d2:55:a2:f7:09:83:98:7e:c6:bb: 03:58:dc:8f:b3:e0:56:11:f7:43:43:40:d6:36:05: 9f:e5:72:8f:10:0a:19:d6:6f:e9:4c:15:bd:8b:4f: 8b:44:e7:cb:bd:d4:23:a2:88:6f:21:89:4c:b0:86: e2:66:70:b5:86:62:48:e4:08:b8:59:23:a0:5d:b0: 56:f3:df:42:d7:b3:bc:77:e4:5d:e1:ca:bc:88:70: 3e:ce:61:a7:27:ae:64:77:85:9a:dc:5f:18:56:9e: 29:e9:06:b2:04:c1:72:9c:fd:7f:4a:fa:85:be:6f: e7:2b:15:f6:12:59:c3:b2:37:1c:6a:1c:c6:f7:5a: f8:99:c4:00:9f:56:24:13:5f:22:69:56:0b:f1:4a: 4a:fa:57:b7:96:df:d5:97:74:62:eb:c9:7f:d6:b4: b2:b8:c4:29:c3:a0:7b:1b:c7:fe:e2:93:a3:ed:3a: c0:6c:1c:80:19:ff:a2:9c:a1:97:33:97:57:8d:25: 38:b4:ac:a8:84:5a:90:53:82:50:46:e0:24:ca:19: 56:99:b9:99:2c:90:79:90:da:04:e2:8a:7c:f0:3c: c6:70:c4:a5:7d:d8:1b:36:c6:f9:32:9c:46:31:62: bd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E0:DF:B5:7E:AC:1B:11:51:46:70:86:67:A8:33:FE:BD:E7:4C:2C X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ef:76:5b:05:86:24:c0:1a:9a:42:a0:69:d9:a8:d6:32:bf: bb:ff:cf:a0:2a:05:6e:21:c4:0a:f1:ed:1c:eb:71:58:0c:4f: 71:72:c0:91:48:76:63:c5:b5:2b:65:74:91:e2:eb:6e:55:dc: 02:ff:bc:33:d3:5b:51:53:ca:2e:b7:83:b5:0c:1b:da:77:cc: 79:75:5f:fb:9f:c0:c1:32:b2:11:ab:a1:a4:fc:6f:81:90:74: 56:47:d6:98:94:33:eb:04:07:f0:fd:90:06:89:77:8f:50:2b: a2:d0:d0:f6:b4:3d:cd:c2:30:d3:69:95:74:db:17:6c:33:ef: 63:c4:90:c7:ce:6e:57:a7:ae:94:32:d6:bd:57:23:f5:e7:04: 0b:ed:1d:35:3d:77:77:33:cc:89:df:04:9a:12:d5:f5:35:47: 24:e7:2e:68:d0:13:87:36:e6:52:3e:fd:46:06:12:4a:1d:0f: ed:1a:91:1a:04:bf:d5:76:4f:44:c0:2c:bf:b0:0f:a2:d2:c3: f8:53:aa:b0:a5:78:47:df:2e:7b:ae:1e:bd:12:56:e0:73:2b: 8e:ba:bc:e3:94:48:ce:aa:05:ea:0c:af:a3:90:9b:94:fa:1b: 8d:55:b0:89:2d:1e:6f:83:47:ca:69:40:ae:f3:84:94:c1:3d: 51:d2:c6:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUxMDE5MDY0MTA5WhcNMjUxMDI2MDY0MTA5WjAYMRYwFAYD VQQDEw02OGY0ODgwNS00YzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xFu/KU2XpASwl13UrLh6prNQdJVovcJg5h+xrsDWNyPs+BWEfdDQ0DWNgWf 5XKPEAoZ1m/pTBW9i0+LROfLvdQjoohvIYlMsIbiZnC1hmJI5Ai4WSOgXbBW899C 17O8d+Rd4cq8iHA+zmGnJ65kd4Wa3F8YVp4p6QayBMFynP1/SvqFvm/nKxX2ElnD sjccahzG91r4mcQAn1YkE18iaVYL8UpK+le3lt/Vl3Ri68l/1rSyuMQpw6B7G8f+ 4pOj7TrAbByAGf+inKGXM5dXjSU4tKyohFqQU4JQRuAkyhlWmbmZLJB5kNoE4op8 8DzGcMSlfdgbNsb5MpxGMWK9JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3g37V+ rBsRUUZwhmeoM/6950wsMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA673ZbBYYkwBqaQqBp2ajWMr+7/8+gKgVuIcQK8e0c63FYDE9xcsCR SHZjxbUrZXSR4utuVdwC/7wz01tRU8out4O1DBvad8x5dV/7n8DBMrIRq6Gk/G+B kHRWR9aYlDPrBAfw/ZAGiXePUCui0ND2tD3NwjDTaZV02xdsM+9jxJDHzm5Xp66U Mta9VyP15wQL7R01PXd3M8yJ3wSaEtX1NUck5y5o0BOHNuZSPv1GBhJKHQ/tGpEa BL/Vdk9EwCy/sA+i0sP4U6qwpXhH3y57rh69ElbgcyuOurzjlEjOqgXqDK+jkJuU +huNVbCJLR5vg0fKaUCu84SUwT1R0sZR -----END CERTIFICATE-----Generated at Mon Oct 20 04:23:58 2025 by rpki-client